Privacy Policy

Auto Fix Data Ltd ("Auto Fix Data", "we", "us", "our") is a professional automotive repair database platform headquartered in the United Kingdom. We are the data controller for all personal data collected through this website (autofixdata.net) and our subscription services.

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at: privacy@autofixdata.net

We collect the following categories of personal data:

• Account data: name, email address, business name, phone number, and billing address when you register for a subscription or free trial.
• Usage data: IP address, browser type, pages visited, time spent on pages, and referring URLs collected automatically via cookies and server logs.
• Payment data: billing information processed by our payment provider. We do not store full card numbers ourselves.
• Communication data: messages sent via our contact form, live chat, or support tickets.
• Marketing data: email marketing preferences and interaction with our campaigns.

Under UK GDPR, we process your personal data on the following lawful bases:

• Contract performance: to fulfil your subscription or trial agreement.
• Legitimate interests: to improve our services, prevent fraud, and send service-related communications.
• Consent: for marketing emails and optional cookies. You may withdraw consent at any time.
• Legal obligation: to comply with tax, accounting and regulatory requirements.

We use your personal data to:

• Provide, operate and improve the Auto Fix Data platform and subscription services.
• Process payments and manage your account.
• Send transactional emails (receipts, renewal reminders, password resets).
• Send marketing communications where you have opted in.
• Respond to support and enquiry requests.
• Comply with legal obligations and resolve disputes.
• Conduct analytics to understand how our services are used and to improve them.

We do not sell your personal data. We may share your data with the following categories of third parties:

• Payment processors: to handle billing and prevent fraud.
• Cloud infrastructure providers: to host our platform securely.
• Email service providers: to deliver transactional and marketing emails.
• Analytics providers: to help us understand website usage (with IP anonymisation enabled).
• Database licensors: ALLDATA, AutoData, Haynes Group, Mitchell1 and Identifix (Solera) as required to verify and fulfil your subscription.
• Legal authorities: where required by law or to protect our rights.

All third-party processors are contractually bound to protect your data in accordance with applicable data protection law.

Some of our service providers are based outside the UK/EEA. Where data is transferred internationally, we ensure appropriate safeguards are in place — including Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner's Office (ICO) — to protect your personal data.

We retain personal data for as long as necessary to provide our services and comply with our legal obligations:

• Active account data: retained for the duration of the subscription plus 7 years for tax purposes.
• Marketing data: retained until you unsubscribe or withdraw consent.
• Support communications: retained for 3 years after the last interaction.
• Usage/analytics data: retained in aggregated form for up to 26 months.

Under UK GDPR, you have the following rights regarding your personal data:

• Right of access: request a copy of the personal data we hold about you.
• Right to rectification: request correction of inaccurate or incomplete data.
• Right to erasure ("right to be forgotten"): request deletion of your data in certain circumstances.
• Right to restrict processing: request that we limit how we use your data.
• Right to data portability: receive your data in a structured, machine-readable format.
• Right to object: object to processing based on legitimate interests or for direct marketing.
• Rights related to automated decision-making: we do not make solely automated decisions that significantly affect you.

To exercise any of these rights, contact us at privacy@autofixdata.net. We will respond within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with the ICO at ico.org.uk.

We use cookies and similar tracking technologies to improve your experience. You can control cookie preferences through our cookie consent banner or your browser settings. For full details, see our Cookie & GDPR Policy.

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, loss, or destruction. These include encryption in transit (TLS), access controls, regular security assessments, and staff training. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

Our services are intended for professional use by adults aged 18 and over. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by displaying a notice on our website. The "Last updated" date at the top of this page indicates when the policy was last revised.

For any questions, concerns or requests relating to this Privacy Policy or your personal data: